Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/MhOqeupoU7OdTJhKNR92FmNTIMM.roa
File: MhOqeupoU7OdTJhKNR92FmNTIMM.roa (raw, json)
Hash identifier: 2uLKSjXhdMRjZl77MI0eU1MfNvhnzzYEkwCNpkuwAbo=
Subject key identifier: 32:13:AA:7A:EA:68:53:B3:9D:4C:98:4A:35:1F:76:16:63:53:20:C3
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 0186A61B8EDC52E6187AB0E3D68309F54147
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/MhOqeupoU7OdTJhKNR92FmNTIMM.roa
Signing time: Fri 03 Mar 2023 06:14:29 +0000
ROA not before: Fri 03 Mar 2023 06:14:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48715
IP address blocks: 185.239.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 26 Nov 2023 06:06:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a6:1b:8e:dc:52:e6:18:7a:b0:e3:d6:83:09:f5:41:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Mar 3 06:14:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3213aa7aea6853b39d4c984a351f7616635320c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:85:ea:01:2e:d0:f8:af:da:00:44:48:2c:d0:
02:16:59:2f:cb:6a:57:16:aa:db:1d:c2:d0:b7:0f:
24:2a:dc:c1:48:49:c3:cd:0a:61:ca:f6:c9:9e:ea:
68:16:d5:0c:ed:e1:12:d4:f5:e5:13:7d:6e:bb:e8:
8f:c0:9c:f3:78:cf:da:ca:52:ba:e6:12:d4:ec:53:
31:65:37:55:c8:4e:38:c8:58:51:ee:db:4f:fd:bc:
75:e8:4a:1a:f0:38:92:32:d2:3a:30:fb:2c:e6:11:
09:91:82:2a:70:7d:5e:64:21:7a:53:37:5b:c4:21:
c2:77:00:b4:da:f8:52:90:46:ca:25:03:be:20:d2:
00:a2:a2:db:7e:ec:be:bb:b3:04:d2:5b:f3:f0:d0:
8f:c8:0b:48:3f:c0:ee:d8:78:fd:d0:e6:33:e6:d3:
f9:83:18:2f:f9:8d:60:06:fc:c0:6e:63:80:93:a8:
b0:f6:b7:10:91:16:05:d7:0a:6e:2e:a3:ea:71:12:
92:49:d2:b6:ad:b5:18:2e:bf:fe:33:a4:74:1c:33:
fe:05:44:db:15:6d:d1:50:7e:21:e6:21:75:67:0b:
27:7f:f3:b3:d7:98:7c:78:e4:71:dc:9e:75:fe:f2:
64:e5:10:b9:5b:69:5e:6a:d1:6a:5f:00:13:18:09:
f8:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:13:AA:7A:EA:68:53:B3:9D:4C:98:4A:35:1F:76:16:63:53:20:C3
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/MhOqeupoU7OdTJhKNR92FmNTIMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.1.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:00:1a:a3:ee:02:37:ef:15:42:e2:d5:0a:c6:67:74:eb:a0:
6a:2e:59:ef:50:c6:53:c6:5a:66:e8:f7:18:a2:bb:0e:f3:fc:
71:bb:fb:2f:b3:86:b8:e2:94:c5:55:c9:4f:b7:98:e9:da:37:
42:28:74:27:41:89:f3:ae:b1:61:0c:0c:94:41:4f:f8:e1:c0:
01:16:7a:1d:b6:af:24:b3:4e:84:62:11:3c:74:b6:70:64:3c:
ad:6a:fd:19:14:60:53:7a:22:40:7e:2f:f9:e8:39:5d:16:ee:
d4:e4:59:11:59:c0:37:c5:df:a0:7d:85:0e:60:12:0b:d4:ca:
51:b9:66:15:33:b3:82:d1:a2:89:8f:7c:3e:05:29:85:8c:12:
d7:41:1f:ea:01:4f:17:4b:47:7e:41:77:fa:02:63:cf:3c:ab:
3e:23:58:bc:7f:18:86:c4:33:0b:01:5a:a4:c8:bb:3f:1c:81:
0f:a8:db:50:f6:87:b1:4b:f6:4b:6d:84:47:f1:66:a2:7b:2b:
51:12:5f:a2:ea:86:c6:6e:8e:f0:0f:30:5d:29:70:59:42:58:
b4:f0:da:d6:21:48:49:a4:94:a7:13:5d:76:a2:17:b8:61:41:
ee:e5:4a:90:96:9f:cb:59:45:00:a3:8e:68:c5:b3:c2:9a:c7:
89:fe:0a:05
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYamG47cUuYYerDj1oMJ9UFHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZGIzOGIzNDNkYTJkMTE5MzA5ZWRhYTE5YzdhNzg4NzAz
MjdlYmUwHhcNMjMwMzAzMDYxNDI5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjEzYWE3YWVhNjg1M2IzOWQ0Yzk4NGEzNTFmNzYxNjYzNTMyMGMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm4XqAS7Q+K/aAERILNACFlkvy2pX
FqrbHcLQtw8kKtzBSEnDzQphyvbJnupoFtUM7eES1PXlE31uu+iPwJzzeM/aylK6
5hLU7FMxZTdVyE44yFhR7ttP/bx16Eoa8DiSMtI6MPss5hEJkYIqcH1eZCF6Uzdb
xCHCdwC02vhSkEbKJQO+INIAoqLbfuy+u7ME0lvz8NCPyAtIP8Du2Hj90OYz5tP5
gxgv+Y1gBvzAbmOAk6iw9rcQkRYF1wpuLqPqcRKSSdK2rbUYLr/+M6R0HDP+BUTb
FW3RUH4h5iF1Zwsnf/Oz15h8eORx3J51/vJk5RC5W2leatFqXwATGAn4dwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDITqnrqaFOznUyYSjUfdhZjUyDDMB8GA1UdIwQY
MBaAFG3bOLND2i0RkwntqhnHp4hwMn6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQt
M2RmYTUxMGQ2YjE2LzEvTWhPcWV1cG9VN09kVEpoS05SOTJGbU5USU1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQtM2RmYTUxMGQ2YjE2
LzEvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAue8BMA0G
CSqGSIb3DQEBCwUAA4IBAQANABqj7gI37xVC4tUKxmd066BqLlnvUMZTxlpm6PcY
orsO8/xxu/svs4a44pTFVclPt5jp2jdCKHQnQYnzrrFhDAyUQU/44cABFnodtq8k
s06EYhE8dLZwZDytav0ZFGBTeiJAfi/56DldFu7U5FkRWcA3xd+gfYUOYBIL1MpR
uWYVM7OC0aKJj3w+BSmFjBLXQR/qAU8XS0d+QXf6AmPPPKs+I1i8fxiGxDMLAVqk
yLs/HIEPqNtQ9oexS/ZLbYRH8WaieytREl+i6obGbo7wDzBdKXBZQli08NrWIUhJ
pJSnE112ohe4YUHu5UqQlp/LWUUAo45oxbPCmseJ/goF
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:51 2024 by rpki-client on console-fra.rpki-client.org